chore(deps-dev): bump commonmark from 0.28.1 to 0.29.3

[dependabot-preview]

Bumps commonmark from 0.28.1 to 0.29.3.

Release notes

Sourced from commonmark's releases.

commonmark.js 0.29.3

• Fix some rough edges around ES modules (Kyle E. Mitchell) (#195, #201, #203):
  • Set module types via package.json files in subdirectories. A number of JavaScript files were rewritten as ES Modules, but their extensions remained .js. That extension is ambiguous to newer version of the Node.js runtime, which can load both CommonJS modules and ES Modules. To fix this, we add package.json files with type properties to the various subdirectories. Setting type to "module" tells Node.js to interpret .js files in that directory and below as ES Modules. Otherwise, Node.js falls back on the package.json at root, which currently sets type to "commonjs".
  • Make benchmark and test use commonjs again.
  • bin: remove use of ESM and use require('../'). Node.js version 14, which supports ES Modules without any flag or the esm package, is currently in long-term support. But a great many folks still run older version of Node.js that either don't support ES Modules at all or hide that support behind a feature flag.
  • Import specific functions from entities package.
  • Update "Basic Usage" comment in lib/index.js.
• Remove package-lock.json (Kyle E. Mitchell).
• Fix 'make test' target so that dist is built.
• reHtmlTag: don't use case-insensitive matching (#193). The spec specifies uppercase for declarations and CDATA.
• Handle piped input from stdin in windows. Use file descriptor 0 instead of '/dev/stdin'. Note that this allows piping but doesn't handle the case where users run bin/commonmark and enter input directly. See #198 for some relevant discussion.
• Configure GitHub Actions to test on Node.js 14 and 15 (Kyle E. Mitchell).
• Allow EOL in processing instructions (#196).

commonmark 0.29.2

• Use ES modules (Iddan Aaronsohn).
• Improve and simplify reference link normalization (#168). We now use the built in str.toLowerCase().toUpperCase(), which @rlidwka has shown does an accurate unicode case fold. This allows us to remove a huge lookup table and should both decrease the size of the library and speed things up.
• Fix end source position for nested or indented fenrced code blocks. Improves on earlier fix to #141, which only worked for code blocks flush with the left margin.
• Upgrade to entities 2.0+.
• Fix generation of dist files for dingus.
• Use esm for bin/commonmark, bench, test.
• Use rollup uglify plugin to create minified dist.
• Move dev dependencies to proper place in package.json.
• Use rollup instead of browserify (Iddan Aaronsohn).
• Reformat code with prettier (Iddan Aaronsohn).

Changelog

Sourced from commonmark's changelog.

[0.29.3]

• Fix some rough edges around ES modules (Kyle E. Mitchell) (#195, #201, #203):
  • Set module types via package.json files in subdirectories. A number of JavaScript files were rewritten as ES Modules, but their extensions remained .js. That extension is ambiguous to newer version of the Node.js runtime, which can load both CommonJS modules and ES Modules. To fix this, we add package.json files with type properties to the various subdirectories. Setting type to "module" tells Node.js to interpret .js files in that directory and below as ES Modules. Otherwise, Node.js falls back on the package.json at root, which currently sets type to "commonjs".
  • Make benchmark and test use commonjs again.
  • bin: remove use of ESM and use require('../'). Node.js version 14, which supports ES Modules without any flag or the esm package, is currently in long-term support. But a great many folks still run older version of Node.js that either don't support ES Modules at all or hide that support behind a feature flag.
  • Import specific functions from entities package.
  • Update "Basic Usage" comment in lib/index.js.
• Remove package-lock.json (Kyle E. Mitchell).
• Fix 'make test' target so that dist is built.
• reHtmlTag: don't use case-insensitive matching (#193). The spec specifies uppercase for declarations and CDATA.
• Handle piped input from stdin in windows. Use file descriptor 0 instead of '/dev/stdin'. Note that this allows piping but doesn't handle the case where users run bin/commonmark and enter input directly. See #198 for some relevant discussion.
• Configure GitHub Actions to test on Node.js 14 and 15 (Kyle E. Mitchell).
• Allow EOL in processing instructions (#196).

[0.29.2]

• Use ES modules (Iddan Aaronsohn).
• Improve and simplify reference link normalization (#168). We now use the built in str.toLowerCase().toUpperCase(), which @rlidwka has shown does an accurate unicode case fold. This allows us to remove a huge lookup table and should both decrease the size of the library and speed things up.
• Fix end source position for nested or indented fenrced code blocks. Improves on earlier fix to #141, which only worked for code blocks flush with the left margin.
• Upgrade to entities 2.0+.
• Fix generation of dist files for dingus.
• Use esm for bin/commonmark, bench, test.
• Use rollup uglify plugin to create minified dist.
• Move dev dependencies to proper place in package.json.

Commits

• 54290b0 Update dist files.
• f696861 Revise changelog.
• 7cc1041 Preliminary changelog update.
• 5822cc0 Fix 'make test' target so that dist is built.
• 47ef9d7 reHtmlTag: don't use case-insensitive matching.
• 8fa6136 Bump to 0.29.3.
• 7d49ff0 Handle piped input from stdin in windows.
• fcf28fb Remove package-lock.json
• e61ba38 Make benchmark runner a CommonJS module again
• 8a94740 Revert "Use esm for bench and test."
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

Superseded by #259.